Skip to content

How can we improve Proton Pass or Authenticator?

← Proton Pass & Authenticator
'Options for autofill' has been merged into this idea

Domain URL matching rules

Proton pass should have URL matching rules like bitwarden. This makes it easier to handle different usecases.
For instance, at work I have different usernames/passwords on different subdomains and I would like to be able to limit certain credentials to specific subdomains and have others shared accross multiple subdomains.

So that would be great to have a diffrent matching rules like:
- root domain
- hostname
- starts with
- regex
- exact match
- ...

1,537 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

celibacy040 shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Jesper Langpap commented  ·   ·  Report

    Subject: Proton Pass struggles with multiple Workday (SaaS) tenants on same domain

    Hi,

    When working with SaaS solutions like Workday, Proton Pass has trouble handling multiple accounts that live on the same base domain.

    Example:
    - https://simcorp.wd3.myworkdayjobs.com/
    - https://ag.wd3.myworkdayjobs.com/

    Each of these URLs belongs to a different company tenant, but they all share the common base domain “myworkdayjobs.com”.

    The problem:
    When I create a new login for a different Workday tenant, Proton Pass suggests updating an existing entry instead of creating a new one. It appears to match only on the common domain “myworkdayjobs.com” rather than recognizing the full subdomain (e.g. simcorp.wd3.myworkdayjobs.com vs ag.wd3.myworkdayjobs.com).

    Current workaround:
    To distinguish between the entries, I have to put the company name in the username field or in the item title, which is not ideal and does not reflect the actual username.

    Feature request:
    Could you:
    1) Improve matching so Proton Pass can treat different subdomains on the same SaaS domain as separate sites, and/or
    2) Provide an option to force Proton Pass to create a new login entry even when the base domain matches an existing one?

    This change would make Proton Pass much easier to use with multi-tenant SaaS platforms like Workday.

    Best regards,
    Jesper

  • Jacek commented  ·   ·  Report

    i've been using proton for almost 2 years now. i have seen this issue a long time ago already and its still not implemented... i think this one is a deal breaker. how is it still not a thing

  • FriesischScott commented  ·   ·  Report

    At the very least proton pass should be able to differentiate between subdomains.

  • Sazzad Kabir commented  ·   ·  Report

    This is a must have - considering going back to bitwarden. But otherwise Protonpass is excellent!

  • Matttiiisss commented  ·   ·  Report

    UP Please, i really need this for my business...

  • Yann commented  ·   ·  Report

    God, nearly 3 years later, still not there... I'm not a developer, but is this so complex to implement, I mean, filtering the passwords by the full URL instead of the main domain only should be basic no?

  • Nikolai Nyegaard commented  ·   ·  Report

    Agreeing with @Nick. I was close to pulling the trigger on purchasing a Proton Premium subscription, but the lack of this specific feature is holding me back and keeping me on Bitwarden for now.

  • Nick commented  ·   ·  Report

    Ready to purchase as soon as this is a feature. Even just a partial implementation of hostname matching would be huge. During my testing I get 40+ login options each time I visit something in my homelab :(

  • Vince42 commented  ·   ·  Report

    And do not forget to match per port as well!

    I think that pattern matching (wildcards, regular expressions) would be very convenient.

  • Tundor commented  ·   ·  Report

    One of the main reasons why I cannot switch from 1password.

  • Reuhno commented  ·   ·  Report

    We need absolutely this feature ! @Proton, come on please ! 🙏

  • Adel Alzubeir commented  ·   ·  Report

    I regret the move from Dashlane to Proton. This one is extremely annoying

  • Anonymous commented  ·   ·  Report

    This is actually a blocker for me to move from Bitwarden to ProtonPass

  • Pham commented  ·   ·  Report

    Comment for Proton Pass Feedback Thread (“Domain URL Matching Rules”)

    As an active Proton ecosystem user running a self-hosted domain (e.g. example.net), I can confirm that the current substring-based URL matching in Proton Pass severely limits usability for anyone who uses their own domain for both email and internal services.

    Example:
    All of my logins use @example.net as the username, and I host services like
    nextcloud.example.net, grafana.example.net, and truenas.example.net.
    When I visit any of those sites, Proton Pass lists every vault item containing “example.net” anywhere in the record — dozens of unrelated logins — instead of only the one matching subdomain. This makes the extension nearly unusable for homelab or enterprise setups.

    What’s needed:
    Proton Pass should implement configurable domain-matching rules, just like Bitwarden and 1Password:

    Exact host match (grafana.example.net)

    Base domain match (*.example.net)

    Starts-with / wildcard (service*.example.net)

    Regex (for advanced users)

    Multiple URLs per credential

    This would allow Proton Pass to support professional and self-hosted use cases while maintaining strict security boundaries between services. It’s also essential for organizations that share a common apex domain across many logins.

    Until Proton supports per-entry match modes, anyone with a homelab or corporate domain faces an autofill list so long it borders on unusable.

    “Let all things be done decently and in order.” — 1 Corinthians 14:40, KJV
    Precise domain matching is the digital equivalent of order. Please prioritize this improvement soon.

    — A long-time Proton user and self-hoster

  • Noon commented  ·   ·  Report

    Baffled this isn't already a feature. I'm finding posts about this (and CS responses) from over 2 years ago.

  • Renaud Dufour commented  ·   ·  Report

    I come from keepass and this is a must have. Without more flexible matching rules I see too many accounts for a given domain and picking the correct one is a pain.

  • Hakim Bawa commented  ·   ·  Report

    Same as Justin below, I also have a home lab and tons of services, each with different logins. Having a way to match urls would be really useful

  • cpsibo commented  ·   ·  Report

    Adding my vote. This is a really important feature for professionals and home labbers. Without a "starts with" or similar rule, you can have dozens of accounts show up for everything under a domain.

← Previous 1 3 4 5 6 7

Proton Pass & Authenticator: Changes to existing features

Categories

Feedback and Knowledge Base

(thinking…)